lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20171004101720.ob5f467tro7agpcz@sirena.co.uk>
Date:   Wed, 4 Oct 2017 11:17:20 +0100
From:   Mark Brown <broonie@...nel.org>
To:     Sandeep Patil <sspatil@...gle.com>
Cc:     Laura Abbott <labbott@...hat.com>, devel@...verdev.osuosl.org,
        gregkh@...uxfoundation.org, arve@...roid.com,
        dri-devel@...ts.freedesktop.org, linux-kernel@...r.kernel.org,
        riandrews@...roid.com,
        Benjamin Gaignard <benjamin.gaignard@...aro.org>,
        linux-api@...r.kernel.org, sumit.semwal@...aro.org,
        dan.carpenter@...cle.com
Subject: Re: [PATCH v5 2/2] staging: ion: create one device entry per heap

On Tue, Oct 03, 2017 at 04:08:30PM -0700, Sandeep Patil wrote:

> It is entirely possible and easy in android/ueventd to create those nodes
> under "/dev/ion/".  (assuming the heap 'subsystem' for these new devices will
> point to 'ion').

The reason I didn't say /dev/ion/foo initially is that if people want to
keep the existing /dev/ion around for compatibility reasons then the
/dev/ion name isn't available which might cause issues.  Otherwise just
dumping everything under a directory (perhaps with a different name) was
my first thought as well.

> (Also FWIW, the SELinux permissions are also possible with the current ion
> implementation by adding rules to disallow specific ioctls instead of adding
> permissions to access device node as this change would do)

AIUI the request is to limit access to specific heaps, and obviously not
everyone wants to deal with SELinux at all.

Download attachment "signature.asc" of type "application/pgp-signature" (489 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ